package com.itheima.interceptor;

import com.itheima.utils.JwtUtils;
import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpServletResponse;
import lombok.extern.slf4j.Slf4j;
import org.springframework.stereotype.Component;
import org.springframework.web.servlet.HandlerInterceptor;

@Component
@Slf4j
public class TokenInterceptor implements HandlerInterceptor {

    @Override
    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
//        //1.获取请求路径
//        String requestURI = request.getRequestURI();
//        //2.判断请求路径是否包含login，如果包含，放行
//        if (requestURI.contains("login")) {
//            return true;
//        }
        //3.获取请求头中的令牌（token）
        String token = request.getHeader("token");
        //4.判断令牌是否为空，如果为空拦截
        if (token == null || token.isEmpty()) {
            log.info("令牌为空, 拦截请求: {}, 响应401");
            response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
            return false;
        }

        //5.如果令牌不为空，调用JwtUtils中的方法校验令牌是否合法
        try {
            JwtUtils.parseToken(token);
        } catch (Exception e) {
            log.info("令牌为空, 拦截请求: {}, 响应401");
            response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
            return false;
        }

        // 校验通过，放行
        log.info("令牌合法, 放行请求: {}");
        return true;
    }

}
